• I have a problem with the login hide feature. I had a custom login URL set via the plugin, but needed to change it to a new address.. Now BOTH are working! Obviously I need the old (custom) URL to be deactivated for security, but I don’t know any way to manually remove this. The default login url is indeed hidden, but I have 2 custom urls active instead of just the 1 I most recently set up.

    Any help would be appreciated.

Viewing 5 replies - 1 through 5 (of 5 total)
  • Hi, look into .htaccess file in your root directory (use an S/FTP program to access your server or cPanel files browser and open it in a text editor like sublime text).
    Most probably you’ll have this entry duplicated:

    # Enable the hide backend feature - Security > Settings > Hide Login Area > Hide Backend
    	RewriteRule ^(/)?MY_HIDDEN_SLUG/?$ /wp-login.php [QSA,L]
    	RewriteRule ^(/)?wp-register-php/?$ /wplogin?action=register [QSA,L]

    Remove the old slug and also the duplicated wp-register-php RewriteRule

    Cheers!

    Thread Starter tank commander gibbons

    (@scannermobs)

    Hi Luca – Many thanks for your message. I checked htaccess but your suggestions didn’t seem to help. Here’s what I have..

    # BEGIN WordPress
    <IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteBase /websitepath/
    RewriteRule ^index\.php$ - [L]
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule . /websitepath/index.php [L]
    </IfModule>
    
    # END WordPress
    # Set PHP handler to application/x-httpd-phpbetas on Wed Nov  4 21:08:33 MST 2015.
    AddHandler application/x-httpd-phpbetas .php

    This was from the subfolder where this particular site is installed, so let me know if I should be checking the root as well, or if there’s anything else you can think of that could be doing this.

    Cheers

    Hi scannermobs,

    my pleasure!
    It seems that your .htaccess (your “subfolder” is your root so it’s ok to look there) is missing the whole iThemes section.
    Try checking that your server has the right file writing permissions on your .htaccess (has to be 0644) and also re-save all of iThemes options (be sure that “Allow iThemes Security to write to wp-config.php and .htaccess.” is checked to write under Global Settings).
    This plugin could be a great life saver but has so many hiccups…
    Best,

    – Luca

    Thread Starter tank commander gibbons

    (@scannermobs)

    Hi again

    My permissions were already correct, but I found that by disabling plugin write to htaccess within settings, then enabling and doing the same with the “hide login URL” it seems to have fixed it.

    So thanks very much for your assistance, your suggestions helped!

    All the best

    Hi and I’m happy to have helped you solve this issue.
    Just a word of warning about this plugin. In case you find that your site is behaving strangely (ie. 404 on images generated on the fly and other inconsistencies) most probably is due to some hard rewriting made by this plugin.
    Up to now I’ve not been able to overcome this and am about to delete this plugin for the second time in a 2 months row in search for a similar solution…

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘Changed login url – OLD url still active!’ is closed to new replies.